Ventajas exclusivas

Hotel in Mexico

Privacy Policy of Hotel Yes Inn Nuevo Veracruz

IMSALMAR, S.A. DE C.V.
HOTEL YES INN
PRIVACY NOTICE

At Hotel Yes Inn we understand the importance of knowing how we will handle your personal data and we are aware that by using our services you entrust us with such data and we understand the responsibility that this entails, so we will strive to take care of and protect your information.

In that sense, and in order to inform you about how we handle your personal data and in compliance with the Law, we make available to you the following Privacy Notice, with the AIM of letting you know what data we will collect, why we request it, how you can update it or even delete it, among other things.

Personal data of minors or incapacitated persons under the Law can only be provided by the father, mother, or legal guardian and will be safeguarded under strict security measures. If you are a minor or incapacitated person under the Law, you should not provide us with your personal data without the prior, express, and written consent of the person who has parental authority or guardianship over you.

1.- IDENTITY AND ADDRESS OF THE “RESPONSIBLE”.
Imsalmar, S.A. de C.V. as the operator of the hotel commercially known as Yes Inn and all its dining establishments (points of sale) (hereinafter simply the “RESPONSIBLE”) with address at Liverpool 133, Col. Juárez, Cuauhtémoc City Hall, ZIP Code 06600, Mexico City, is responsible for the processing of your personal data (hereinafter simply the “DATA”) and the information collected from the holders of the “DATA” (hereinafter simply the “HOLDERS”) who will be treated in a strictly confidential manner.

2.- PERSONAL DATA THAT WILL BE REQUIRED.
Imsalmar, S.A. de C.V., will be responsible for collecting, using, and protecting the following “DATA”, whether verbally, in writing, or through electronic means, in accordance with the purposes for which the “HOLDER” gives their consent, with the latter being responsible for the truthfulness of the same:

  • a).- Full name.
  • b).- Place and date of birth.
  • c).- Nationality.
  • d).- Age.
  • e).- Marital status.
  • f).- Address.
  • g).- Tax Status Certificate.
  • h).- CURP
  • i).- Email.
  • j).- Telephone number(s).
  • k).- Official photo identification (INE, passport, professional license, ID, driver’s license).
  • l).- Bank card number (credit or debit), expiration date, and security code.
  • m).- License plates of your car, if parked at the hotel.
  • n).- If your stay is covered by your company: name of your company, position in that company, and Tax Status Certificate of your company.

3.- SENSITIVE DATA.
The “RESPONSIBLE” will collect and process certain sensitive “DATA”, that is, those that may reveal aspects such as racial or ethnic origin, present or future health status, genetic information, religious, philosophical, and moral beliefs, union affiliation, political opinions, and sexual preference, committing the “RESPONSIBLE” to treat all sensitive “DATA” with strict security and confidentiality.

Due to the COVID-19 pandemic, data concerning your health status will be collected solely with the aim of achieving your health protection and that of the other people staying at the aforementioned hotel, safeguarding this information for the time necessary to fulfill the purposes of this “NOTICE” (hereinafter simply the “NOTICE”), in accordance with the provisions of article 10 fractions V and VI of the Federal Law on Protection of Personal Data Held by Private Parties (hereinafter simply the “LAW”).

4.- PURPOSES OF PROCESSING PERSONAL DATA.
The “DATA” obtained will be used for the following purposes, taking into account that some of these purposes will proceed until you are our guest:

    • I.- Primary or necessary purposes:
      • a).- Verify your identity and information.
      • b).- Update your information in our database.
      • c).- Analyze your economic capacity to cover our services.
      • d).- Identify and/or register you as a client or user of our site.
      • e).- Conduct, if necessary, investigations to verify, through third parties hired for this purpose, the veracity of the data you provide us.
      • f).- Provide the requested services and inform you about changes in them.
      • g).- Internal reports of the different areas of the aforementioned hotel for statistical purposes.
      • h).- Payment of services for a single occasion or programming of service payments.
      • i).- Issuance of invoices.
      • j).- Video surveillance within our facilities (common areas) for your safety, that of other guests, and the staff inside them.
      • k).- Retain your information to comply with legal provisions and requirements of various authorities and/or regulatory entities.
      • l).- Compliance with provisions on the prevention of Money Laundering.
      • m).- Address your doubts, complaints, clarifications, claims, and suggestions as a guest.
      • n).- Understand your needs to provide services adequately.
      • o).- Evaluate the quality of the services provided by the hotel.
      • p).- Provide you with personalized attention through various electronic communication means such as email, telephone, chat, WhatsApp, among others.
      • q).- Keep a history of the use of our services, including a physical or electronic record, of your stays, consumption, payment for the same, channel through which you reserved.
    • II.- Secondary or ancillary purposes:
      • a).- Inform you about new services, products, or events related to the above.
      • b).- Send you our promotions, newsletters, news, thank you notes, congratulations, by various means.
      • c).- Fulfill obligations related to the services.
      • d).- Carry out quality and satisfaction surveys to evaluate the quality of our services and, if applicable, our products.
      • e).- Invite you to participate in our events or campaigns.
      • f).- Carry out advertising on social networks, media, newspapers, or magazines.
      • g).- Offer you any of our services and, if applicable, our products.
      • h).- For marketing, commercial prospecting, statistical, and historical purposes.
      • i).- Develop usage analysis of services, market segmentations, statistics, records, and information analysis.
      • j).- Use of images in advertising media and support, corporate image, marketing, advertising campaigns, videos, photography, and publications in any means of communication.

The “HOLDER” of the “DATA” has the right to object to their “DATA” being used for the mentioned secondary or ancillary purposes. If you wish to exercise this right, the “HOLDER” of the “DATA” must do so in accordance with the procedure established in section 5 (five) of this “NOTICE”, within 5 (five) business days following the date on which this “NOTICE” was made available to you, so that the “RESPONSIBLE” does not process your “DATA” for those purposes. Otherwise, it will be understood that the “HOLDER” agrees and consents to the processing of their “DATA” for each and every one of the purposes listed above. It should be noted that the foregoing is without prejudice to the provisions of article 26 of the “LAW” and other applicable provisions.

If the “HOLDER” exercises the right of “ACCESS”, this obligation on the part of the “RESPONSIBLE” will be considered fulfilled when the “DATA” is made available to the “HOLDER”, or by issuing simple copies or electronic documents that will be sent to the “HOLDER” at the email address provided in their request.

The “RESPONSIBLE” may deny access to the “DATA” or to carry out the rectification or cancellation or grant opposition to the processing of the same in the cases referred to in article 34 of the “LAW”. The “RESPONSIBLE” will not be obliged to cancel the “DATA” of the “HOLDER” under the assumptions established in article 26 of the “LAW”.

If the “HOLDER” of the data needs to clarify doubts about the procedure and requirements for exercising the ARCO rights, they must send an email to the address hernandeza@ostar.com.mx.

5.- OPTIONS OR MEANS OFFERED BY THE RESPONSIBLE TO LIMIT THE USE OR DISCLOSURE OF PERSONAL DATA.
The “HOLDER” of the “DATA” to limit the use or disclosure of the same, must send an email to the address hernandeza@ostar.com.mx requesting the limitation of the use or disclosure in question, through which they may request to be included in internal exclusion lists of no contact for promotional and market purposes. The “HOLDER” of the “DATA” to avoid unwanted advertising can also register in the Public Registry of the Federal Consumer Prosecutor (REPEP) by entering the following link http://repep.profeco.gob.mx/, in which case there is a possibility that they may not have access to the possible additional benefits with our secondary purposes.

6.- MEANS TO EXERCISE ACCESS, RECTIFICATION, CANCELLATION, OR OPPOSITION RIGHTS (ARCO RIGHTS).
Based on the “LAW”, the “HOLDER” of the “DATA” has the right to Access (“ACCESS”) the data held by the “RESPONSIBLE,” as well as the details of its processing. They also have the right to Rectify (“RECTIFICATION”) them in case they are incomplete or inaccurate, to Cancel them (“CANCELLATION”) as stipulated in the “LAW” itself, and to Oppose (“OPPOSITION”) the processing of the same.

To exercise the aforementioned rights, the “HOLDER” of the “DATA” or their legal representative must send a request through a written letter to the email address hernandeza@ostar.com.mx or through written notification to the legal department located at Liverpool 133, Col. Juárez, Cuauhtémoc City Hall, ZIP Code 06600, Monday to Friday from 09:00 a.m. to 06:00 p.m., specifying that they wish to exercise their ARCO rights. This request (written letter) must contain the requirements referred to in article 29 of the “LAW,” that is:

      • a).- Name of the “HOLDER” and address or other means (for example email) to communicate the response to their request.
      • b).- Documents proving their identity or, where applicable, the legal representation of the “HOLDER”.
      • c).- Clear and precise description of the “DATA” for which they intend to exercise any ARCO right.
      • d).- Any other element or document facilitating the location of the “DATA”.
      • e).- In the case of requests for rectification of “DATA,” the holder must indicate, in addition to the above mentioned in the previous sections of this point, the modifications to be made and provide the documentation supporting their request.

If the information provided by the “HOLDER” in their request is insufficient or incorrect to address their request, or if the necessary documents are not attached, the “RESPONSIBLE” may request the necessary information and/or documentation from the “HOLDER” to process their request in accordance with article 96 of the Regulations of the “LAW,” giving the “HOLDER” 10 (ten) business days to comply with the “RESPONSIBLE’s” request. In turn, the “RESPONSIBLE” must inform the “HOLDER” within a maximum period of 20 (twenty) business days from the date of receipt of their request for access, rectification, cancellation, or opposition, of the determination adopted, so that, if applicable, it can be implemented within 15 (fifteen) business days following the date on which the response is communicated. In accordance with article 33 of the “LAW,” the aforementioned deadlines may be extended only once for an equal period, provided that the circumstances of the case justify it.

When the “HOLDER” exercises the “ACCESS” right, this obligation on the part of the “RESPONSIBLE” will be considered fulfilled when the “DATA” is made available to the “HOLDER,” or through the issuance of simple copies or electronic documents that will be sent to the “HOLDER” at the email address provided in their request.

The “RESPONSIBLE” may deny access to the “DATA” or carry out the rectification or cancellation or grant opposition to the processing of the same in the cases referred to in article 34 of the “LAW”. The “RESPONSIBLE” will not be obliged to cancel the “DATA” of the “HOLDER” under the assumptions established in article 26 of the “LAW”.

If the “HOLDER” of the data needs to clarify doubts about the procedure and requirements for exercising the ARCO rights, they must send an email to the address hernandeza@ostar.com.mx

7.- REVOCATION OF CONSENT.
The “HOLDER” of the “DATA” has the right to revoke at any time the consent they have given us for the processing of their “DATA,” as established in article 8 of the “LAW,” for which they must send a written request to the email address hernandeza@ostar.com.mx, or by written notification to the address Liverpool 133, Col. Juárez, Cuauhtémoc City Hall, ZIP Code 06600, Mexico City, Monday to Friday from 09:00 a.m. to 06:00 p.m., clearly detailing the data for which they revoke their consent. In those same addresses, they will be informed of the procedure to follow to address their request.

8.- PERSONAL DATA OF PERSONS WHO ARE IN A STATE OF INTERDICTION OR LEGAL INCAPACITY.
Some of the data we process may include data of persons who are in a state of interdiction or legal incapacity, for the processing of which we require the consent of the guardians. In this case, the exercise of ARCO rights can be carried out through the guardian or legal representative of the incapacitated person or declared to be in a state of interdiction.

9.- SECURITY MEASURES.
The “RESPONSIBLE” knows and recognizes the value of your “DATA”, so we have implemented security measures to try to prevent their use for purposes other than those authorized, as well as to try to prevent their alteration, loss, theft, or access by third parties. The measures include the use of specialized computer programs, staff training, and the adoption of internal data protection policies.

10.- TRANSFER OF DATA THAT MAY BE CARRIED OUT.
The “RESPONSIBLE” may transfer national or international data without the consent of the “HOLDER” in the terms established by article 37 of the “LAW” and in compliance with article 69 of its Regulations.

11.- USE OF COOKIES.
A cookie is a file that is downloaded to your computer when you access certain web pages. In this sense, we use cookies to improve our services, show you advertising related to your browsing preferences and the content of your previous visits, keep sessions active, as well as to record traffic from redirection from other sites. When visiting the website of the “RESPONSIBLE” again, cookies allow us to personalize our content according to your preferences.

It is worth noting that the website of the “RESPONSIBLE” does not use or store cookies to obtain personal identification data from the computer of the “HOLDER” regarding data that was not originally sent as part of the cookie. While most browsers accept cookies, the “HOLDER” of the “DATA” can configure their browser not to accept them, that is, they can disable them by following the procedure of each browser, in which case, they should consider that by deactivating them, it could limit the functionality offered by the platform.

12.- NOTIFICATION OF CHANGES AND/OR UPDATES TO THE PRIVACY NOTICE.
The “RESPONSIBLE” may modify and/or update this “NOTICE” at any time, either due to legislative or jurisprudential reforms, internal policies, or new requirements, with the updated version that will apply at all times being the one published on our website hotelyesinn.com.mx

When the “RESPONSIBLE” needs to change its identity, collect additional financial or asset data, change or modify the purposes for which it obtained the “DATA,” or modify the conditions of transfers that may be made in accordance with this “NOTICE”, it will make available to the “HOLDERS” of the “DATA” a new “NOTICE” through the email that the “HOLDER” has provided to the “RESPONSIBLE” or through the website of the “RESPONSIBLE”.

13.- ACCEPTANCE OF TERMS.
If the “HOLDER” uses the services, it means they have read, understood, and accepted each and every one of the points outlined in this “NOTICE.” If they do not agree with any or all of these points, the “HOLDER” should not provide any personal information or use the services.

If there is any disagreement or complaint about the processing of your “DATA,” you may contact the Institute as indicated in the “LAW.”

June 21, 2023.